MTN confirms cybersecurity breach, assures core systems and customer funds remain secure

Telecommunications powerhouse MTN Group has confirmed a cybersecurity incident involving unauthorized access to customer data in select countries where it operates.

Though the company has not yet revealed which nations were impacted, it stressed that its core systems and financial platforms remain uncompromised.

In a statement released on April 24, 2025, MTN attributed the breach to an intrusion by an unknown third party, who claims to have infiltrated parts of the company’s infrastructure. However, MTN emphasized there is currently no evidence suggesting that customer accounts or mobile money (MoMo) wallets have been directly breached.

“An unknown third party has claimed to have accessed data linked to parts of our systems,” the statement said. “At this stage, we do not have any information to suggest that customers’ accounts and wallets have been directly compromised.”

Reassuring customers further, MTN confirmed that its essential infrastructure—such as its core network, billing frameworks, and financial services operations—remains fully secure and operational.

The group said it moved swiftly to enact its cybersecurity defenses, informing law enforcement agencies including the South African Police Service (SAPS) and the Directorate for Priority Crime Investigation, known as the Hawks. Authorities in the impacted regions have also been alerted, and MTN stated it is cooperating closely with ongoing investigations.

In line with regulatory obligations, the company has initiated notifications to affected customers. Additionally, it issued broad guidance to all users, encouraging them to take extra precautions with their personal information.

“Customers are encouraged to remain vigilant and follow regular security measures,” the company said, urging individuals to place fraud alerts on their credit reports and to ensure their apps and devices are regularly updated.

MTN also advised customers to strengthen their security practices, recommending the use of robust, unique passwords and heightened caution around suspicious communications. “Do not disclose information such as passwords, PINs and OTPs when asked to do so by phone, text message or email,” the company cautioned, adding that multifactor authentication should be enabled wherever possible.

Underscoring its pledge to transparency and the safeguarding of customer trust, MTN reiterated that protecting user data remains a paramount priority.

“We will continue to contain and manage this matter carefully,” the statement said. “MTN remains committed to safeguarding the integrity of our systems and the trust placed in us by our customers and other stakeholders.”